superhuman / rxxr2
☆141Updated last year
Related projects ⓘ
Alternatives and complementary repositories for rxxr2
- A tool to perform static analysis on regexes to determine whether they are vulnerable to ReDoS.☆110Updated 2 years ago
- ☆107Updated 2 years ago
- ☆330Updated 3 weeks ago
- A Node.js vulnerability finding tool.☆95Updated 4 years ago
- This repo contains the files required to perform a CSRF attack using Flash and HTTP 307 redirections.☆75Updated 6 years ago
- A static analysis API for finding deserialization attack gadgets☆38Updated 2 years ago
- Generic SAST Library☆125Updated this week
- WebAppSec Content Security Policy☆210Updated last month
- JWT fuzzer☆104Updated 6 years ago
- Detect vulnerable regexes in your project. REDOS, catastrophic backtracking.☆320Updated 2 years ago
- research☆150Updated 8 months ago
- ☆76Updated 11 years ago
- HTTP.ninja☆147Updated last year
- When MVC magic turns black☆286Updated 4 years ago
- An extended Node.js runtime with additional security mechanisms built-in. Protects your Node.js applications from injection attacks such …☆31Updated 3 years ago
- My CodeQL queries collection☆94Updated last year
- A vulnerable application exposing Spring Boot Actuators☆122Updated 5 years ago
- 🐱💻 Poc of CVE-2019-7238 - Nexus Repository Manager 3 Remote Code Execution 🐱💻☆149Updated 5 years ago
- Collection of community-driven CodeQL query, library and extension packs☆74Updated last week
- Record some Vulnerabilities☆44Updated 2 years ago
- CodeQL model generation for Go.☆17Updated 3 years ago
- GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.☆208Updated last month
- A test suite built with Mocha/Chai to test for behavioral differences between image libraries for the web☆69Updated 4 years ago
- Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"☆197Updated last year
- Run CodeQL queries at scale using Multi-Repository Variant Analysis (MRVA)☆49Updated 7 months ago
- HTML5 WebSocket message fuzzer☆144Updated 5 years ago
- Grammar-based HTTP/1 fuzzer with mutation ability☆243Updated 3 weeks ago
- A tool to perform Sequential Import Chaining☆254Updated 5 years ago
- Automatically Preventing Code Injection Attacks on Node.js☆78Updated 2 years ago
- HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…☆49Updated 6 years ago